The PKC-only application security model ...

Nicolas Williams Nicolas.Williams at sun.com
Wed Jul 23 21:37:36 EDT 2008


On Wed, Jul 23, 2008 at 05:32:02PM -0500, Thierry Moreau wrote:
> The document I published on my web site today is focused on fielding 
> certificateless public operations with the TLS protocol which does not 
> support client public keys without certificates - hence the meaningless 
> security certificate. Nothing fancy in this technique, just a small 
> contribution with the hope to facilitate the use of client-side PKC.

Advice on how to generate self-signed certs for this purpose would be
good for an FYI, or even a BCP.  I don't think we need extensions to any
protocols that support PKI to support bare PK (though some protocols
have both, e.g., IKE).

Nico
-- 

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list